CVE-2024-26587 | Linux Kernel up to 6.5/6.6.13/6.7.1 devlink.sh nsim_init_netdevsim null pointer dereference (08aca65997fb/c5068e442eed/ea937f772083)

Inserito da Angelo Barbosa | Feb 22, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.5/6.6.13/6.7.1. It has been classified as problematic. Affected is the function nsim_init_netdevsim of the file devlink.sh. The manipulation leads to null pointer dereference.

This vulnerability is traded as CVE-2024-26587. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26587 | Linux Kernel up to 6.5/6.6.13/6.7.1 devlink.sh nsim_init_netdevsim null pointer dereference (08aca65997fb/c5068e442eed/ea937f772083)

Post correlati

CVE-2024-34064 | pallets jinja up to 3.1.3 xmlattr Filter cross site scripting (GHSA-h75v-3vvj-5mfj)

CVE-2024-41482 | Typora up to 1.9.2 MathJax cross site scripting

CVE-2024-38267 | Zyxel VMG8825-T50K up to 5.50(ABOM.8)C0 IPv6 Address Parser memory corruption

CVE-2024-35226 | Smarty code injection